Point Breakdown
| Category | Points | Weight |
| Milestone 1: Risk Assessment Draft | 50 | 5% |
| Milestone 2: Final Risk Assessment Report | 50 | 5% |
| Milestone 3: Penetration test report draft | 100 | 10% |
| Milestone 4: Penetration test draft with mitigations | 200 | 20% |
| Labs | 200 | 20% |
| Midterm Exam | 150 | 15% |
| Final Exam | 200 | 20% |
| Participation | 50 | 5% |
Grading Scale
|
Grades |
Scaled Points |
|
A |
940 points |
|
A- |
900 points |
|
B+ |
870 points |
|
B |
830 points |
|
B- |
800 points |
|
C+ |
770 points |
|
C |
730 points |
|
C- |
700 points |
|
D+ |
670 points |
|
D |
630 points |
|
D- |
600 points |
|
F |
599 points or less |
Certificate Option
As an option, students seeking certification may replace the midterm and final exams by passing the Security+ certification or another certification approved by the instructor. You can substitute your score on the certification (plus an adjustment—5% for the Security+) for the final. For example, if you received an 85% on the Security+ exam you would receive 90% of the points for your final and midterm exams.
To receive credit for the certification, a student must show evidence of having taken the certification exam and the exam’s grade by the last day of class. If a student doesn’t show the instructor evidence of passing the certification by this date, then he/she will be required to take the final exam.
Class Participation Policy
Contribution will account for 5% of your final grade. Most students will earn 80% of these points. Students who are exceptional and go above and beyond in enhancing the classroom experience may receive a higher score.
The following list is not comprehensive, but rather an example of items weighted in the contribution category:
- Participating in class discussions
- Arriving on time and not leaving early
- Not using technology inappropriately (distracting yourself or others)
- Providing feedback on the class via the course evaluation
- Treating others with respect
- Showing courtesy for presenters (instructor, students, other speakers)
- Completing Student Feedback From
Technology Requirements
This year will use Google Cloud Platform (GCP) to run tools and virtual machines necessary to complete assignments. New accounts on GCP receive a $300 credit. You should be able to complete this class without going over that cost. I will have you launch a virtual machine instance on GCP from which you can complete class assignments. You will be able to remotely connect to your instance using Chrome Remote Desktop, which works just like a browser tab.
You should also bring a laptop to class to connect to GCP.
Late Assignment Policy
All assignments and projects are to be submitted on time or early, so plan accordingly. If you have to miss class please submit your assignment early. On rare occasions, an exception may be granted, allowing the student to submit the work late with a 20% penalty. Under no circumstances will anything be accepted more than a week late.
Milestone Assignments
| Milestone 1: Risk Assessment Report Draft |
| Milestone 2: Final Risk Assessment Report |
| Milestone 3: Penetration Test Report draft |
| Milestone 4: Final Penetration Test with Mitigations Report |
Milestone 1: Risk Assessment Report Draft
This is a group project. Create a draft risk assessment report for a financial management system.
Milestone 2: Final Risk Assessment Report
This is a group project. Incorporate feedback from the instructor on the draft and improve and submit your final version of the report.
Milestone 3: Penetration Test Report Draft
This is a group project. The midterm will be a vulnerability and penetration assessment report of a server. Teams of students will be given an IP address of a server to assess for security weaknesses.
Milestone 4: Final Penetration Test with Mitigations Report
This is a group project. Incorporate the feedback you receive on your Penetration Test Report draft and add recommendations for mitigating each identified vulnerability to create a Final Penetration Test with Mitigations Report.
Labs
Labs are hands-on learning activities introduced in class and completed outside of class. Labs are typically due one and a half weeks after they are introduced.
There are 12 labs. However, only your top 9 highest lab scores will be counted toward your lab grade.
Recommended Security Films
 |
“Citizenfour” by Laura Poitras The 2015 Academy Award winner for Best Documentary Feature, this film tells the story of Edward Snowden and the NSA spying disclosures of 2013. Availability: https://www.justwatch.com/us/movie/citizen-four Rated R. Edited version available on Vidangel.com. |
 |
“Zero Days” by Alex Gibney A 2016 documentary about Stuxnet and the advent of cyberwarfare. Availability: https://www.justwatch.com/us/movie/zero-days Rated PG-13. Edited version available on Vidangel.com. |
 |
“The Lives of Others” by F. Henckel von Donnersmarck The 2007 Oscar winner of Best Foreign Language Film of the Year, this film tells the story of a secret police agent in East Berlin in 1984 who surveils a writer and becomes increasingly absorbed in his life. Availability: https://www.justwatch.com/us/movie/the-lives-of-others Rated R. Edited version available on Vidangel.com. |
 |
“The Conversation” by Francis Ford Coppola A classic 1974 film psychological thriller starring Gene Hackman that revolves around surveillance. It is more relevant today than when it debuted. Availability: https://www.justwatch.com/us/movie/the-conversation Rated PG. Edited version available on Vidangel.com. |